CVE-2008-0108 - CVE Reference - Advisories

CVE Reference: CVE-2008-0108

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-0108

Description: Stack-based buffer overflow in wkcvqd01.dll in Microsoft Works 6 File Converter, as used in Office 2003 SP2 and SP3, Works 8.0, and Works Suite 2005, allows remote attackers to execute arbitrary code via a .wps file with crafted field lengths, aka "Microsoft Works File Converter Field Length Vulnerability."

CVE Status: Candidate

References: ST 1019388 SAID Secunia Advisory: SA28904 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5202 MS http://www.microsoft.com/technet/security/bulletin/ms08-011.mspx MILW0RM http://www.milw0rm.com/exploits/5107 IDEFENSE http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=660 HP http://marc.info/?l=bugtraq&m=120361015026386&w=2 CERT http://www.us-cert.gov/cas/techalerts/TA08-043C.html BID 27659

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Microsoft Windows XP I2O Utility Filter Driver Privilege Escalation

2.	Citrix Access Gateway Unspecified Authentication Bypass

3.	Novell Client Login Long Username/Contex t Buffer Overflow

4.	Kmita Mail "file" File Inclusion Vulnerability

5.	Debian update for kernel

6.	Gentoo update for aterm, eterm, rxvt, mrxvt, multi-aterm, wterm, and rxvt-unicode

7.	rxvt-unicode X11 Display Security Issue

8.	mrxvt X11 Display Security Issue

9.	Internet Explorer "DisableCaching OfSSLPages" Weakness

10.	wterm X11 Display Security Issue